Overview

overview

3

Static

static

1

cf6bb221f2...8.html

windows7-x64

3

cf6bb221f2...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    121s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    06/09/2024, 11:14

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    cf6bb221f2be69d23fdfd43dd3908229_JaffaCakes118.html

  • Size

    27KB

  • MD5

    cf6bb221f2be69d23fdfd43dd3908229

  • SHA1

    abf4e9d1a093a3f6e8de11fcf791309e8d5860e5

  • SHA256

    52f0ab214331e5d05d0a5582e5ec82e43d2f3935f1893cf17e9725ae5ec79c59

  • SHA512

    121e67967bcd8ae11a2c3ff08f4a9b33345a8efa2b04d6eb246426ba3bb69a7da65c6ff98ed87e2738ec74c4326dc52416880129499b6fb6cf61d9e26e53eb80

  • SSDEEP

    192:uwLMb5nWVpenQjxn5Q/hnQie0NnYnQOkEntnrnQTbnxnQ9eSQm6ulgaQl7MBUqn9:JpPQ/I3Ikg9SOq

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\cf6bb221f2be69d23fdfd43dd3908229_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2244
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2244 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious behavior: GetForegroundWindowSpam
      • Suspicious use of SetWindowsHookEx
      PID:2792

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          3aa79d6381e8c3bfe26ef8efad45b866

          SHA1

          f607cedf2bbf5cb9c7bcfb1b7b0282c7de4390e3

          SHA256

          bbe348dc2244dd75795b7e9af671b4c4c42bc110a07a5e1b947a2fbd55ff7feb

          SHA512

          1dbc3e041fb5400429b19ec553252e777642c030f7b54ff3df96000815b3007a2da2dbbc4570d199e25ce60aa30f6fcf718a0ca072a14302b8c33acc4b4eb779

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          30accf801f1310f26e6457e4bc86187b

          SHA1

          c84f23b68a1c4850b3bc8e92ca05cd57c18f0a02

          SHA256

          8b2f1bb8217ab96957d964efc0f99e661649b2f29a6aed3edff4fc13cf5b4bb1

          SHA512

          5ce59301213ebc36044520ea3a248b06ae3727bee32e0c6c145a126a9cef5aa20a01af1e74473cdd9a159fdd44c450fb90caff49ac3482dfdb2c68f8107ee479

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          765f332bea1b538e4cb124d6cd49cb38

          SHA1

          10f40d7cdda670f9331751740c619bd75362aae6

          SHA256

          097a0549a2b4fdbbb129eab3556300a39d384977b51e047e5ffef05955be2894

          SHA512

          5ca9f33e8c3009050be14552e7f46fc2bff4c8b392f033473dfcf956fe4981500abd9e625116219c8fe97e4d2a3eab9a5cf10889c98193c4396e6e534fdcaa2a

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          7da62d43ce82f87a4766494be9ed1066

          SHA1

          a985d8d380c41aa2e12563508e89cb3456836aa9

          SHA256

          696e178f0d4ed9b16654747f973757e111195c5a75cafebd3125cbfdcb950de9

          SHA512

          d65cf801753b4489152405b7c7b60c00ded90ff589c37c88efa3ee0edd33be080e16ae975e0a457b9c9edd81c62efc3a32f03c535c95c846a8bb22868293f4c4

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          289b21f63f50f207f7a980cb2d53a14a

          SHA1

          9305cbd93ae49b63b447546b7b8b55500645cb66

          SHA256

          d81f8621aa3fa36fdd1e632da7efa680c64088f00b94b25735bb1570a261f772

          SHA512

          75a002a9a43b51384c5bbccff95d2cbe624660a46a23ccf6e5d6c2ac11f8078e729697b153a2ae186df36e02cc091e889f0a553686c7d4e7b9a60e255fecf37f

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          fcf8a66386bc8ff6cf679be6dcada0cf

          SHA1

          2bdf52092d0bf17305286050981a528e6e2697a5

          SHA256

          40279b368a0a939fec49ea331d0e1d4ad5c80925de389e45385f218913a40b2a

          SHA512

          ed744035d17ed063265e1b414a0350135ac60ac78566f14410e5668ca9dd9240508783cba95bfbb174ea3bab3826f40b5013458cc8fe27eef748b2dd64ec9185

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          92e544aeab89c1d20e7f2712ccaf1051

          SHA1

          bb3e6fcdd6aaf4d084c31e96aa1e44b606241b6b

          SHA256

          7e3c3af33ea476858b8b7f6844f7e18f48537aef25cbdb450074fd8f67cc83ed

          SHA512

          31c2f0edfa8a318881e5a020e3bd15f91d2244b2d90d325f933f6c781486cef1ff554ef4264cdbc78e9b65a00df885a9f2186a1ccd979629b1bbe9a9f6c6d297

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          3689a4e95b12b3f56e3b06868de9a8ec

          SHA1

          ce5bba3cc6e5b257fa503b3b90f5c53b7a3f4a56

          SHA256

          b7c6733842ea39f7af574e4116ea8644c49ac6c851339981749eacbf986417ce

          SHA512

          48c988b1c5557c49c4a8f573d6c0634938a5bb25d7a7f40d441a5e851476ccbac13a8f247adcdcc9dba01358021019aec58485b50bb527244e4d051fa09224cf

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          9f54d67177b2b10238638999410c9577

          SHA1

          4890eaf62e30af7a2907720f90cbbbdd37f727aa

          SHA256

          73828d7b85147b8b9499732ad7b14fe0e5d09ea66e308551271db7c3a7e589ad

          SHA512

          11ae4d49435a1301874e1639b09f4b74e60c15cbfc4eba9abae0b3fb2209e6ee3867d21b0cfe1918d6ceb56e15ebdd713220bd124a1d175ad508463a59d0ff65

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          92524cf19279e17a9d5956821d07c21b

          SHA1

          eb9b683dce10fcfbe713d143786f131a77e12d45

          SHA256

          5d493e2128eff30be5a70255f6f513a3dcbd35ecf0356825133ab078d87c91b0

          SHA512

          2ea4a93374ea2ff8565fd6cd4eb888fcc0deb56db2bc560abd4dec92c7a134bba921860ed55c19bc172d87daa9f92c0a98738ca198c4d2e58f5ea9c735a2e768

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          9af1b0ad84c19f20ef617918560d72af

          SHA1

          4cbd3b862765e44ff7f76a9cd89bb8a4194b55a1

          SHA256

          f1a903dba008ef96ecfe202b550f7033632595ac18f68522f0bcf27621ff8f21

          SHA512

          45e3cdd2078467e9995400930520a0446fa891dde24cd7fde76c5691152e34b26a827fb7485bf063823a2f11e4a7e8500f4b68cfc5cfd9cf55c7c70356d620ac

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          7a481fe141449a1a69a3d8a270597739

          SHA1

          982227e2d429bd8409d03a5dfc5b8faddaef9a56

          SHA256

          fe2b5905a0f0b6dd3b4f6dd1c785293115ea36d0aa0e79eb5b8be09e734a4abb

          SHA512

          fcf7be0ecfcfd547f7011a02a9d284e0c32c4caeb9e531842a901c2184682d863792569c37118f5ef0a854e69125671315b30368a7c91e78f83b4c576d6208b5

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          666afc112fa1a30ca10266ee7c5f15c3

          SHA1

          f3b66aaf4399dae1ef69f256d37f78bb134358a2

          SHA256

          e93fae7589d3d92adfe18d9a11ca0fdc3641b2032a19c08882be191c79688936

          SHA512

          c4a0e4aa89b41e9f051558387c3c392e405032db3da8968cfeab4b0d2d501dacca17d5d5395cca043e951d191245eb0e646edd5e6484b452a4af6aa1e9adc6cd

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          f22863c8d5d26f8d929fdba7a9c0900d

          SHA1

          c9282d37c769342b525aede937cdde9191442df2

          SHA256

          d33cdb052f0c2d042616815e835e06fa3d01a863f0644c3fce02f42452651e9f

          SHA512

          a5c80318f52e32537742c9636024f911596f1fc415ce0df38f774afc6e9d2b5f81e7cf3a9dd5e6487b0cbf9ee42163c56c3bf3705f1ea9913ab8bf756196ab5d

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          becf4e7ecd3ff59bd070d49a725762d8

          SHA1

          a7d6ab94db7228395f9015c53aeae1a4c0b6a392

          SHA256

          6a9b14904135e8b7c487cce6faf591d2ca9c738f53173ee587a61f63d6f9fa9f

          SHA512

          d91b07d4b006fb7aaf5e45bf6c55b3e15b32ed7fb7990b1be022c968103073aeb6ff3a981e9e22bdec86749a9fbc618505878005cfd0573f9752598c27886810

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          51e4e7e22921d3d719c20f0bd98982b9

          SHA1

          be4a96a0b1c1600a330204452a2d7dc78ba30b9b

          SHA256

          44ff7c9f7c8110d8a4e79805275ad13609068c1714440d14dbf0a33a2c5f5e99

          SHA512

          af74ff5cf20a8feee472d9c822ab88636f19557b056dd1eb9435645b075acdc2ffad6f06f5f4e455b938af4b3bacd9b987d366b8acaf414e5d9ef74235b2887e

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          dd2ede1575ab295a4e0fe44dab19510c

          SHA1

          77b99f77003d654c3193562a699de040d47b2e78

          SHA256

          65a75ce521f86ca2df80489a2df502d0453f909dcb76a4832314336ee9bc24b3

          SHA512

          6b2d3ea488823c9c5ff861cfaacd79bba2d3a63ad57e311f93d3cc52d78d55ac4146303f2085aa528a26af1a828b8a5d32317d3a6cd44660b6ea54a983e78030

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          d824ea7aacd38044ca3dea560dda8461

          SHA1

          68104e8660c761dc6b51c0223a4b26ddef52d70f

          SHA256

          aa65d3940493f60ef6ad10d3f848b4e8ba0eb05a327b5a0fcff914ac87caf50c

          SHA512

          d0821285b0d9e5461a18e8b2a3cee31962e4a4bd9af52b0e4b88f66077e411b5ee87e8ae371863c27e81146270892fc7c1a2e04916cc84549f4628ffb217468b

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          d376ed65b574f31b2dae516d59671973

          SHA1

          ae0c5fa80822ca4597d947578613e344ae97078e

          SHA256

          fa780e344808ad74a2c4310fee15f1d31ea4af3d3dfe28272057387a10f0961c

          SHA512

          28f85ef8215174f71b4f0c339cfd572a286a86708220ded153edcaf8973f03b680396292df38e40df2238b81e46bc1d2c4bc7e427fd17de86f533f54af3526a6

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\Cab65A.tmp
          Filesize

          70KB

          MD5

          49aebf8cbd62d92ac215b2923fb1b9f5

          SHA1

          1723be06719828dda65ad804298d0431f6aff976

          SHA256

          b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

          SHA512

          bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\Tar709.tmp
          Filesize

          181KB

          MD5

          4ea6026cf93ec6338144661bf1202cd1

          SHA1

          a1dec9044f750ad887935a01430bf49322fbdcb7

          SHA256

          8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

          SHA512

          6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

          Download Submit